Spyware Warrior Spyware Warrior
Help with Spyware, Hijacking & Other Internet Nuisances
 
FAQ :: Search :: Memberlist :: Usergroups :: Register
Profile :: Log in to check your private messages :: Log in

Blog spam hawking spyware solutions

 
Post new topic   Reply to topic    Spyware Warrior Forum Index -> Spam
View previous topic :: View next topic  
Author Message
OldOnliner
Junior Member


Joined: 28 Nov 2004
Last Visit: 02 Feb 2006
Posts: 17
Location: Wisconsin
PostPosted: Sun Jul 17, 2005 9:04 pm    Post subject: Blog spam hawking spyware solutions Reply with quote
You might be interested in my recent blog entry. It's something I stumbled upon while looking at latest blogs list at Blogger.com this morning.

My blog about it is here:

http://www.geocities.com/mark_e_p/blog.html

And this is what it says:

Quote:
Here's a stunning example of Blog spam hawking virus, spyware, malware 'solutions' to paranoid PC users.

Read some of the entries to see how dericulous it is. It's just padding search engine placement with blog entries full of semi-clever keywords and referral links.

Blogger User Profile: Computer Saver -- http://www.blogger.com/profile/9306365
Computer Saver Blogs:
http://antivirus-clean.blogspot.com/ -- Antivirus Clean
http://bug-free-operation.blogspot.com/ -- Bug Free Operation


Where I sit, it looks just like spam.
_________________
http://flickr.com/photos/oldonliner
Back to top
View user's profile Send private message Visit poster's website
olliver
Expert Developer


Joined: 27 Jan 2006
Last Visit: 02 Dec 2010
Posts: 1157
Location: yes
PostPosted: Thu Feb 02, 2006 5:59 pm    Post subject: Reply with quote
Interesting post, because it demonstrates a weakness in Blogger's code that could be easily expoited for malicious purposes:
When someone is writing an article, the headline apparently isn't stripped from any html tags. In connection with a free blogging service, an environement that can't be immediately controlled and trusted, people shouldn't have any opportunity to use html tags at all (similar to this forum here). Even worse, since html tags aren't filtered, one could implement Javascript events like onLoad or onClick, that would redirect users via document.location to whereever the spammers wants them to be. This could be an affiliate but also an exploit laden site that will hit them with malware. I've just reported the site to Blogger's abuse team and notified them of the possible js-exploit on that occasion.

Btw: His latest post provoked the feedback of a comment spammer. A spammer getting spammed by another spammer, now that's what I call irony Smile

Olliver
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Spyware Warrior Forum Index -> Spam All times are GMT - 8 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



smartBlue Style © 2002 Smartor
Powered by phpBB © 2001, 2002 phpBB Group